From 285b9663263ace39f27116079daa5c9fc3f8d9ac Mon Sep 17 00:00:00 2001 From: Andy Wang Date: Mon, 6 Apr 2020 15:55:22 +0100 Subject: [PATCH] Fix server reply certificate length --- internal/server/TLSAux.go | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/internal/server/TLSAux.go b/internal/server/TLSAux.go index 1724dc0..26a8095 100644 --- a/internal/server/TLSAux.go +++ b/internal/server/TLSAux.go @@ -211,7 +211,7 @@ func composeReply(clientHelloSessionId []byte, sharedSecret []byte, sessionKey [ // we can use sessionKey as a seed here to ensure consistency possibleCertLengths := []int{42, 27, 68, 59, 36, 44, 46} rand.Seed(int64(sessionKey[0])) - cert := make([]byte, rand.Intn(len(possibleCertLengths))) + cert := make([]byte, possibleCertLengths[rand.Intn(len(possibleCertLengths))]) util.CryptoRandRead(cert) encryptedCertBytes := addRecordLayer(cert, []byte{0x17}, TLS12) ret := append(shBytes, ccsBytes...)